Improper Permissions in Intel RWC3 for Windows by Intel
CVE-2020-0564

7.8HIGH

Key Information:

Vendor: Intel
Status: Intel® Raid Web Console 3 (rwc3) For Windows
Vendor: CVE Published:; 13 February 2020

Summary

The vulnerability arises from flawed permission settings in the installer of Intel(R) RWC3 for Windows, allowing authenticated users to potentially escalate their privileges through local access, jeopardizing system integrity. This can lead to unauthorized actions or access within the system, posing security risks for users.

Affected Version(s)

Intel® RAID Web Console 3 (RWC3) for Windows before version 7.010.009.000

References

https://www.intel.com/content/www/us/en/security-center/a...

x_refsource_MISC

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Feb 13, 2020
Vulnerability Reserved
Oct 28, 2019